CVE-2026-43362

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.10

Description A flaw exists in the SMB client where the SMB2 write() function places the write payload in iov[1..n] as part of rq iov. Because smb3 init transform rq() pointer-shares rq iov, the crypt message() function encrypts iov[1] in-place, replacing plaintext with ciphertext. If a replayable error occurs, the retry process sends the already encrypted iov[1], leading to data corruption. This issue is most prevalent during unstable connections where reconnects trigger write retries. This affects SFU mknod and MF symlinks, and on versions prior to 6.10, sync writes were also affected.

Recommendations Update to Linux kernel version 6.10 or later.